Autoexpress
1 CVEs
product
Monthly
SQL Injection vulnerability in autoexpress v.1.3.0 allows attackers to run arbitrary SQL commands via the carId parameter. Rated high severity (CVSS 7.3), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.
SQLi
Autoexpress
NVD
GitHub
CVSS 3.1
7.3
EPSS
0.3%
EPSS 0%
CVSS 7.3
HIGH
POC
This Week
SQL Injection vulnerability in autoexpress v.1.3.0 allows attackers to run arbitrary SQL commands via the carId parameter. Rated high severity (CVSS 7.3), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.
SQLi
Autoexpress
NVD
GitHub